[Snyk] Fix for 5 vulnerabilities

Changes to the following files to upgrade the vulnerable dependencies to a fixed version:
- pom.xml

Priority Score (*)	Issue	Upgrade	Breaking Change	Exploit Maturity
539/1000 Why? Has a fix available, CVSS 6.5	Insecure Default SNYK-JAVA-ORGAPACHEANT-569130	`org.liquibase:liquibase-core:` `3.5.3 -> 3.8.1`	No	No Known Exploit
589/1000 Why? Has a fix available, CVSS 7.5	XML Entity Expansion SNYK-JAVA-ORGGLASSFISHJERSEYMEDIA-595972		No	No Known Exploit
479/1000 Why? Has a fix available, CVSS 5.3	Improper Input Validation SNYK-JAVA-ORGHIBERNATE-568162	`org.hibernate:hibernate-validator:` `5.4.1.Final -> 6.0.19.Final`	Yes	No Known Exploit
619/1000 Why? Has a fix available, CVSS 8.1	SQL Injection SNYK-JAVA-ORGHIBERNATE-584563	`org.hibernate:hibernate-core:` `5.2.10.Final -> 5.3.18.Final` `org.hibernate:hibernate-entitymanager:` `5.2.10.Final -> 5.3.18.Final`	No	No Known Exploit
440/1000 Why? Has a fix available, CVSS 4.3	Denial of Service (DoS) SNYK-JAVA-ORGYAML-537645	`io.swagger:swagger-jersey2-jaxrs:` `1.5.16 -> 1.6.2` `org.liquibase:liquibase-core:` `3.5.3 -> 3.8.1`	No	No Known Exploit

(*) Note that the real score may have changed since the PR was raised.

Upgrade:
- Could not upgrade org.glassfish.jersey.core:jersey-server@2.26 to org.glassfish.jersey.core:jersey-server@2.31; Reason could not apply upgrade, dependency is managed externally ; Location: https://maven-central.storage-download.googleapis.com/maven2/org/glassfish/jersey/containers/project/2.26/project-2.26.pom

Check the changes in this PR to ensure they won't cause issues with your project.

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.

For more information: 🧐 View latest project report

kangaroo-server / kangaroo